 Competition and patching of security vulnerabilities: An empirical analysisAshish Arora (), Chris Forman, Anand Nandkumar and Rahul Telang Information Economics and Policy, 2010, vol. 22, issue 2, 164-177 Abstract: We empirically estimate the effect of competition on vendor patching of software defects by exploiting variation in number of vendors that share a common flaw or common vulnerabilities. We distinguish between two effects: the direct competition effect when vendors in the same market share a vulnerability, and the indirect effect, which operates through non-rivals that operate in different markets but nonetheless share the same vulnerability. Using time to patch as our measure of quality, we find empirical support for both direct and indirect effects of competition. Our results show that ex-post product quality in software markets is not only conditioned by rivals that operate in the same product market, but by also non-rivals that share the same common flaw. Keywords: Information; security; Competition; Software; quality; Vulnerabilities (search for similar items in EconPapers) Downloads: (external link) Related works: Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text Persistent link: https://EconPapers.repec.org/RePEc:eee:iepoli:v:22:y:2010:i:2:p:164-177 Access Statistics for this article Information Economics and Policy is currently edited by D. Waterman More articles in Information Economics and Policy from Elsevier |
Is your work missing from RePEc? Here is how to contribute.
Questions or problems? Check the EconPapers FAQ or send mail to .
EconPapers is hosted by the
School of Business at Örebro University.